PayPal Scam Do Not Fill Out the Form

[ulter]

If you got an email from PayPal this weekend delete it. It read like this and was on PayPal letter head.

Dear PayPal User,

We recently reviewed your account, and suspect that your PayPal account may have been accessed by an unauthorized third party. Protecting the security of your account and of the PayPal network is our primary concern.

Therefore, as a preventative measure, we have temporarily limited access to sensitive PayPal account features.

Click below in order to regain access to your account: https://www.paypal.com/cgi-bin/webscr?cmd=_login-run


Under that link is a completely different hyperlink. The link does not go to where it says it goes. It goes to another website and has a PayPal form for you to fill out just like the one at PayPal. It asks for all your credit card and bank information.
It's very slick and submits the information to someone stealing credit identities.

 

[Ganryu]

Thanks for the heads up, ulter.

 

[Tryn2]

You can a forward it to spoof@paypal.com

 

[THEDENTIST]

I just fill out that email and sent it back it said I would get a $50.00 credit. HOLYSHIT

 

[ricosuve]

THANKS FOE THE HEADS UP !

 

[Rude]

Good heads up

 

[@dam]

gracias

 

[Mudge]

ALWAYS pay attention to the URL. Some emails right now display a URL but when you click, it activates a .SCR attachment that will infect your machine if you are not protected and updated with whatever anti virus you are using.

Multiple reasons to watch emails for the last 8 years or so on the internet, if you get your gaurd down you are likely to get in trouble one way or another.

 

[Ross C Harris]

Thanks would have gotten me for sure !

 

[Makaveli_786]

Thats the trick scammers use when theyr posing as online pharmacies selling steroids.

 

[Ozzy27]

Yea....I had received an email at my cyber-rights account saying my paypal account has been approved. I sent a return email asking them what the hell they were talking about. lmao

 

[Bimmer]

I just fill out that email and sent it back it said I would get a $50.00 credit. HOLYSHIT

Are you seriouse? IF you are cancel you credit card.

 

[dbolme]

mudge is kinda wrong (sorry bro)

usually with url spoofing the syntax is this:

http://www.paypal.com:blah@[url]http://www.realsite.com[/url]

the http protocol allows you to use http://user:password@host, so really you're logging onto www.realsite.com. an example of this would be:

http://www.paypal.com:akhfshgksahf12957kahfsmbgosa@[url]www.steroidology.com[/url]

it looks like you're going to paypal, but really you're going to steroidology, there is no .scr file

 

[dbolme]

as you can see, the vbulletin scripting fucked up the link, so it doesnt work
but you get the point

 

[Mudge]

mudge is kinda wrong (sorry bro)

it looks like you're going to paypal, but really you're going to steroidology, there is no .scr file

Well, I was talking about the anti virus problem because I see much more of that at work versus scams, although I do see plenty of those in my filter as well.

BTW, Microsoft pulled the protocol://userass@siteortnumber compatibility from one of their updates a couple months back.

 

[dbolme]

yeah, im aware of that
way to break rfcs m$

 

[Mudge]

Yeah, people say they dont use FTP via browser much but actually I do on machines that dont have anything but cmd line stuff. I guess I'm lazy, and for people that dont know how to use FTP I can pass them an easy link to click, oh well

Interesting avatar